[darcs-users] Re: GPG trust was Re: Wiki Trust
Antti-Juhani Kaijanaho
antti-juhani at kaijanaho.info
Sat Apr 30 15:31:27 UTC 2005
On 20050430T102435-0400, David Roundy wrote:
> (insert armored keyring here)
Why store a keyring? Just give their gpg --fingerprint result and
require that the key is on the keyservers.
> The question is whether that would be too confusing to users to even be
> useful.
For people who know enough GPG, that'll be enough. For people who
don't, any GPG-based scheme is at best snake oil (unles they learn,
which is outside our control).
IMAO, people should get their binaries from their vendor. Of course,
unfortunately that is only really possible for Debian people and a few
others.
--
Antti-Juhani Kaijanaho http://antti-juhani.kaijanaho.info/
Blogi - http://kaijanaho.info/antti-juhani/blog/
Toys - http://www.cc.jyu.fi/yhd/toys/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: Digital signature
Url : http://lists.osuosl.org/pipermail/darcs-users/attachments/20050430/de0212d7/attachment.pgp
More information about the darcs-users
mailing list